sp800-63c

Correct whitehouse.gov links. Closes usnistgov#699

May 23, 2017

2ef887e · May 23, 2017

This branch is 618 commits behind usnistgov/800-63-3:nist-pages.

Name	Name	Last commit message	Last commit date
parent directory ..
media	media	Update graphics to use consistent terminology.	Mar 2, 2017
README.md	README.md	Change filename of -63C Chapter 5 to "assertions" to match section name.	Nov 21, 2016
cover.md	cover.md	moved FAL to section 4, closes usnistgov#746	May 16, 2017
index.md	index.md	clean up index on -C	Oct 9, 2016
references.md	references.md	Correct whitehouse.gov links. Closes usnistgov#699	May 23, 2017
sec10_usability.md	sec10_usability.md	updated numbers and moved sections to make room for FAL	May 16, 2017
sec11_examples.md	sec11_examples.md	fixed: external links, numbering and level errors, and wording change…	May 18, 2017
sec1_2_introduction.md	sec1_2_introduction.md	removed numbered reference anchors, added OIDC reference tag	May 16, 2017
sec3_definitions.md	sec3_definitions.md	removed numbered reference anchors, added OIDC reference tag	May 16, 2017
sec4_fal.md	sec4_fal.md	fixed: external links, numbering and level errors, and wording change…	May 18, 2017
sec5_federation.md	sec5_federation.md	fixed: external links, numbering and level errors, and wording change…	May 18, 2017
sec6_assertions.md	sec6_assertions.md	fixed: external links, numbering and level errors, and wording change…	May 18, 2017
sec7_presentation.md	sec7_presentation.md	fixed: external links, numbering and level errors, and wording change…	May 18, 2017
sec8_security.md	sec8_security.md	removed numbered reference anchors, added OIDC reference tag	May 16, 2017
sec9_privacy.md	sec9_privacy.md	updated numbers and moved sections to make room for FAL	May 16, 2017

README.md

SP 800-63C

This is a working draft of NIST Special Publication 800-63C, Assertions and Federation. This document is a sub-document referenced by SP 800-63-3 covering the associated topics that had been previously in SP 800-63-2.

SP 800-63C provides guidance on the use of assertions to convey the results of authentication processes to a relying party. Assertions are used in federated identity systems where the authentication is performed a verifier (sometimes called an Identity Provider) and used by a different party, sometimes called a Relying Party. Federation permits a centrally-managed set of credentials to be used at a number if different relying parties.

Keys and other secrets used to maintain state (stored in cookies, local storage, etc.) have been sometimes characterized as local assertions, but have very different requirements and characteristics than assertions conveyed between different parties. Accordingly, such "local assertions" are treated as reauthentication secrets and covered in SP 800-63B.

This document is broken up into sections as follows:

Front matter

1. Purpose and 2. Introduction

3. Definitions and Abbreviations

4. Federation

5. Assertions

6. Assertion Presentation

7. Federation Assurance Level

8. Security

9. Privacy

10. Usability

11. Assertion Examples